[Swan] Trigger for tunnel status change
rene.neumann at zpesystems.com
Thu Apr 9 20:53:08 UTC 2020
Thank you for the input. I will retest this, I guess/hope i did something wrong, I looked primarily at the PLUTO_VERBS as indicator what happened.
Will let you know how I get on.
Happy Easter everyone.
Get Outlook for iOS<https://aka.ms/o0ukef>
From: Paul Wouters <paul at nohats.ca>
Sent: Thursday, April 9, 2020 8:38:35 PM
To: Rene Neumann <rene.neumann at zpesystems.com>
Cc: swan at lists.libreswan.org <swan at lists.libreswan.org>
Subject: Re: [Swan] Trigger for tunnel status change
On Wed, 8 Apr 2020, rene.neumann at zpesystems.com wrote:
> I have a stupid question but exist there a trigger which would indicate a status change in the tunnel, for example, the tunnel went up
> or down? I played with the leftupdown option but found that this only triggers when you actually bring the tunnel up or down, but not
> when the tunnel actually goes up or down.
It should be triggered when the tunnel goes up or down. It is how most
people handle their billing and accounting for VPN usage.
An older option is the statsbin= option. See "man ipsec.conf". It's data
format is uhm, abominable. We just inherited it a long time ago.
> What I mean here is that when I have a connection with the start mode add and the remote site is then starting the connection the
> script will not trigger and the same is true for when the tunnel goes down?
It shouldn't matter which endpoint starts the initiating. Once it is up,
the updown script runs (actually it runs a number of times for different
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Swan